Patch MS15-009 breaks Anyconnect

Started by icecream-guy, February 13, 2015, 07:14:21 AM

Previous topic - Next topic

icecream-guy

if you haven't heard, deploying MS15-009 breaks Anyconnect clients

MS15-009 - Secure Channel cumulative update changes TLS protocol renegotiation and fallback behavior

link here
https://supportforums.cisco.com/discussion/12423591/latest-microsoft-feb-2015-patch-breaks-anyconnect-smc

we've tested AnyConnect version 3.1.05170  and 3.1.06079 which do not appear to be affected
there is a workaround by running vpnui.exe  in compatibility mode.
:professorcat:

My Moral Fibers have been cut.

deanwebb

Well, I hope it doesn't also break the way Windows negotiates wireless connections with its native client.
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.